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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 .704(b). 

Status 

1 )^ Responsive to communication(s) filed on 19 June 2009 . 
2a )□ This action is FINAL. 2b)^ This action is non-final. 

3) n Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-16 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) n Claim(s) is/are allowed. 

6) |EI Claim(s) 1-16 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) n Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) IZI The specification is objected to by the Examiner. 

10) n The drawing(s) filed on is/are: a)^ accepted or b)^ objected to by the Examiner. 

Applicant may not request tliat any objection to tlie drawing(s) be lield in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) n The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) 0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 Certified copies of the priority documents have been received. 

2. \Z\ Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 



Attach ment(s) 

1 ) ^ Notice of References Cited (PTO-892) 

2) Q Notice of Draftsperson's Patent Drawing Review (PTO-948) 

3) □ Information Disclosure Statement(s) (PTO/SB/08) 

Paper No(s)/Mail Date . 



4) I I Interview Summary (PTO-41 3) 

Paper No(s)/Mail Date. . 

5) Q Notice of Informal Patent Application 

6) □ Other: . 



U.S. Patent and Trademark Office 

PTOL-326 (Rev. 08-06) 



Office Action Summary 



Part of Paper No./Mail Date 20090913 



Application/Control Number: 09/910,987 
Art Unit: 2452 



Page 2 



DETAILED ACTION 

1 . Claims 1 - 1 6 are presented for examination. 

Election/Restrictions 

2. Applicant's election without traverse of claims 1-16 in the reply filed on 1/15/2009 is 
acknowledged. 

Applicant is reminded that upon the cancellation of claims to a non-elected invention, the 
inventorship must be amended in compliance with 37 CFR 1 .48(b) if one or more of the 
currently named inventors is no longer an inventor of at least one claim remaining in the 
application. Any amendment of inventorship must be accompanied by a request under 37 CFR 
1.48(b) and by the fee required under 37 CFR 1.1 7(i). 

Claim Objections 

3. Claim 7 is objected to because of the following informalities: "to a connections". This 
appears to be a typographical error. Appropriate correction is required. 

Claim Rejections - 35 USC §103 

4. The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 
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5. Claims 1-16 are rejected under 35 U.S.C. 103(a) as being unpatentable over Weiss et al 
(Weiss), US 2002/0144144, in view of Walker et al (Walker), US 2003/00051 15. 

6. As per claim 1, Weiss discloses the invention including a network interface unit for 
communicating data packets over at least one non-secure network between client devices on at 
least one local area network and a secure virtual private network comprising (fig. 1): 

a. Means for directly connecting to said at least one LAN (fig. 1; pp. 0032: VPN 
device connected to customer LAN), 

b. Means for connecting to said at least one non-secure network (fig. 1 : VPN Device 
connected to open network), 

c. Means for authenticating at least one of said client devices seeking to access said 
VPN, thereby establishing at least one authenticated chent device (pp. 0003, 
0025-0028), 

d. A configuration server for sending configuration information to said at least one 
authenticated client device (pp. 0030), 

e. A security server for establishing a secure connection over said non-secure 
network between said LAN and said access node (pp. 0024-0030). 

7. Weiss did not specifically teach a GUI server for presenting at least one menu to at least 
selected authenticated client device, means for receiving at least a first message reflecting 
selections from said at least one menu, and means for accessing said at least one non-secure 
network using information in said at least a first message. Walker taught to provide operators of 
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the client device an GUI to allow commands for accessing the resource from the client device 
(abstract, pp. 0007-0008). Walker frirther disclosed that such connection could be a virtual 
private network tunnel (pp. 0032). It would have been obvious to one of ordinary skill in the art 
at the time the invention was made to combine the teachings of Weiss and Walker because 
Walker's teaching of using GUI to submit commands to access remote resource enables Weiss' 
network unit to establish connectivity to the resource in response to the commands from the 
client device operator. 

8. As per claim 2, Weiss and Walker taught the invention substantially as claimed in claim 

1. Weiss further disclose said a memory/database for storing configuration information for at 
least one client device, and means for retrieving configuration information for at least selected 
ones of said client devices from said memory upon subsequent authentication of said at least one 
client device (pp. 0032-0033). Weiss and Walker did not specifically teach that the database is 
comprised by the configuration server. However, it would have been obvious to implement the 
database at any remote device in the system. It would have been obvious to one of ordinary skill 
in the art at the time the invention was made to combine the teachings of Weiss and Walker and 
further implement the database inside the configuration server for easily local access purpose. 

9. As per claim 3, Weiss and Walker taught the invention substantially as claimed in claim 

2. Weiss further disclose said configuration information for each authenticated client device 
comprises information received on behalf of each of said client devices upon an initial 
authenticating of respective ones of said client device (pp. 0003, 0032, 0036-0037). 
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10. As per claim 4, Weiss and Walker taught the invention substantially as claimed in claim 

3. Weiss further disclose at least one of said client devices is a computer, and wherein said 
information received on behalf of a client device is received from one of said computers (pp. 
0003,0032, 0036-0037: fig.l). 

11. As per claim 5, Weiss and Walker taught the invention substantially as claimed in claim 

4. Weiss further disclose said information received on behalf of a first computer is received 
from said first computer (pp. 0003, 0032, 0036-0037: fig.l). 

12. As per claim 6, Weiss and Walker taught the invention substantially as claimed in claim 
1 . Weiss further disclose said configuration information for each authenticated client comprises 
information related to connections to said at least one non-secure network (pp. 0034). 

13. As per claim 7, Weiss and Walker taught the invention substantially as claimed in claim 

6. Weiss further disclose said information related to connections to said at least one non-secure 
network comprises information relating to at least one dial-up connection (pp. 0034). 

14. As per claim 8, Weiss and Walker taught the invention substantially as claimed in claim 

7. Weiss and Walker did not specifically teach said information related to at least one dial-up 
connection comprises information relating to at least one customized dial-up connection, said 
information relating to each of said customized dial-up connections comprising a customized 
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dial-up string of characters to control a dial-up modem connection to said non-secure network. 
However, the use customized dial-up string of characters for controlling customized dial-up 
connection is well known and expected in the art. For example, the use of string of P provides 
pulse dialing functions and W provides wait function in dialing. It would have been obvious to 
one of ordinary skill in the art at the time the invention was made to combine the teachings of 
Weiss and Walker and further provides the functions to customized modem dial-up settings to 
provide or program automatic dialing. 

15. As per claims 9-10, Weiss and Walker taught the invention substantially as claimed in 
claim 6. Weiss and Walker did not specifically teach said information related to connections to 
said at least one non-secure network comprises information relating to at least one connection 
having a fixed IP address or a temporary IP address. However, it would have been obvious to 
include a fixed and/or temporary IP address for connecting to the non-secure network. Weiss 
suggested that the connection through the Open network may be wireless, direct or dial-up lines, 
through an ISP (pp. 0034). It is clear that the connection through ISP would require the 
knowledge of the IP of the ISP and that the connection of wireless network may involve 
temporary IP address. It would have been obvious to one of ordinary skill in the art at the time 
the invention was made to combine the teaching of Weiss and Walker and allows connection 
information to include both fixed IP address and/or temporary IP address of resources for 
connection in order to access those resources. 
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16. As per claims 11-12, Weiss and Walker taught the invention substantially as claimed in 
claim 10. Weiss and Walker did not specifically teach to further comprise a DHCP server for 
providing said temporary IP address or further comprise a DHCP client for obtaining a 
temporary IP address from said at least one non-secure network and providing said temporary IP 
address for use in said connection. However, the advantage of DHCP server/client is well 
known and routinely used for automatically assigning IP addresses within the VPN environment. 
It would have been obvious to one of ordinary skill in the art at the tie the invention was made to 
include DHCP server with Weiss and Walker's teachings because it would provide for additional 
efficiency, by allowing to reuse existing address pool assignment facilities so that compatibility 
and integration with existing addressing implementation and IP address management software is 
assured. 

17. As per claim 13, Weiss and Walker taught the invention substantially as claimed in claim 
6. Weiss and Walker did not specifically teach said information related to connections to said at 
least one non-secure network comprises information relating to at least one point-to-point over 
Ethernet connection. However, the advantage and the use of PPPoE is well known and routinely 
used for authentication purposes within VPN network. It would have been obvious to one of 
ordinary skill in the art to include PPPoE connection with Pao because it would provide for 
added security, by using per session authentication based on Password Authentication Protocol 
(PAP) or Challenge Handshake Authentication Protocol (CHAP) will over come security hole in 
a bridging architecture. 
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18. As per claim 14, Weiss and Walker taught the invention substantially as claimed in claim 
2. Walker discloses that memory may comprises a removable memory module (pp. 0024). 

19. As per claim 15, Weiss and Walker taught the invention substantially as claimed in claim 
14. Weiss and Walker did not specifically teach said removable memory module stores 
additional information comprising web pages for presentation by said GUI server. However, it 
would have been obvious to store any types of related information for presenting to the client 
device by the GUI server. It would have been obvious to one of ordinary skill in the art at the 
time the invention was made to combine the teachings of Weiss and Walker and further store 
information in web page formats or web information for presenting to the client by the GUI 
server including directing the client to web pages for assistance or references. 

20. As per claim 16, Weiss and Walker taught the invention substantially as claimed in claim 
1 . Weiss further disclose said means for authenticating comprises means for comparing client ID 
and password information received from a client device with information stored at said network 
interface unit (pp. 0003). 

Response to Arguments 

21 . Applicant's arguments with respect to claims 1-16 have been considered but are moot in 
view of the new ground(s) of rejection. 



Conclusion 
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22. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

Liu, US 6,079,020. 
Subramaniam et al., US 6,081,900. 
Subramaniam et al, US 6,640,302. 

23. A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. 

24. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kenny Lin whose telephone number is (571) 272-3968. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, John FoUansbee can be reached on (571) 272-3964. The fax phone number for the 
organization where this application or proceeding is assigned is (571) 273-8300. 

Information regarding the status of an apphcation may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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/Kenny S Lin/ 

Primary Examiner, Art Unit 2452 
September 18,2009 



